http://blogs.msdn.com/benko/archive/tags/IIS/default.aspxTags: IISen-USCommunityServer 2.1 SP1 (Build: 61025.2)http://blogs.msdn.com/benko/archive/2008/01/17/msdn-security-session-links.aspxThu, 17 Jan 2008 10:04:41 GMT91d46819-8472-40ad-a661-2c78acb4018c:7140399benko3http://blogs.msdn.com/benko/comments/7140399.aspxhttp://blogs.msdn.com/benko/commentrss.aspx?PostID=7140399http://blogs.msdn.com/benko/rsscomments.aspx?PostID=7140399<div class="wlWriterSmartContent" id="scid:0767317B-992E-4b12-91E0-4F059A8CECA8:e72f9411-899e-496c-ac05-4b91ce0e5f29" style="padding-right: 0px; display: inline; padding-left: 0px; padding-bottom: 0px; margin: 0px; padding-top: 0px">Technorati Tags: <a href="http://technorati.com/tags/MSDN" rel="tag">MSDN</a></div> <p><a href="http://msdnevents.com/default.aspx?sid=9">MSDN Events</a> is back! It's a new year and this week I'm back on the road delivering MSDN events again. The topics we're covering include ASP.NET Membership, IIS 7.0 and Hacker Tricks...we show how the exploits work and what you can do to prevent them. In the presentation we've got a number of links to more information and to make it easier I'm including those links here for easy access. </p> <p>These links include the following: </p> <p><strong>IIS 7.0 - What's new for developers</strong></p> <p><a href="http://www.iis.net/articles/view.aspx/IIS7/Explore-IIS7/Getting-Started/Introduction-to-IIS-7-Architecture">iis.net - Introduction to IIS 7 Architecture</a></p> <p><a href="http://www.iis.net/articles/view.aspx/IIS7/Use-IIS7-Administration-Tools/Using-XML-Configuration/IIS7-Configuration-Reference">iis.net - IIS7 Configuration Reference</a></p> <p><a href="http://msdn2.microsoft.com/en-us/library/ms734677%28VS.90%29.aspx">MSDN - Hosting in Windows Process Activation Service</a></p> <p><a href="http://www.iis.net/articles/onepagearticle.ashx/IIS7/Explore-IIS7/Getting-Started/Your-Web-Platform-Security">iis.net - Your Web Platform Security</a></p> <p><a href="http://www.iis.net/articles/view.aspx/IIS7/Managing-IIS7/Configuring-the-IIS7-Runtime/Configuring-Modules/IIS7-Modules-Overview?Page=5">iis.net - Configuring the IIS7 Runtime</a></p> <p><a href="http://mvolo.com/blogs/serverside/archive/2007/08/15/Developing-IIS7-web-server-features-with-the-.NET-framework.aspx">Mike Volodarsky Blog -&#160; Developing IIS7 web server features with the .NET framework</a></p> <p><strong>ASP.NET Provider Model</strong></p> <p><a href="http://msdn2.microsoft.com/en-us/library/ms972319.aspx">MSDN - Provider Model Design Pattern and Specification, Part 1</a></p> <p><a href="http://msdn2.microsoft.com/en-us/library/aa478948.aspx">MSDN - Microsoft ASP.NET 2.0 Providers: Introduction</a></p> <p><a href="http://msdn2.microsoft.com/en-us/library/ms178329.aspx">MSDN - ASP.NET Login Controls Overview</a> </p> <p><a href="http://msdn2.microsoft.com/en-us/library/yy40ytx0.aspx">MSDN - Web Site Administration Tool Overview</a></p> <p><a href="http://msdn.microsoft.com/msdnmag/issues/07/01/ExtremeASPNET/default.aspx">MSDN Mag - Client-Side Web Service Calls with AJAX Extensions</a> </p> <p><a href="http://msdn2.microsoft.com/en-us/library/bb384297(VS.90).aspx">MSDN - Client Application Services</a></p> <p><a href="http://www.codeplex.com/MSFTDBProdSamples/release/projectReleases.aspx?releaseid=4004">AdventureWorksLT Sample Database</a></p> <p><a href="http://dev.mysql.com/downloads/connector/net/5.0.html">MySQL Connector - NET 5.1</a></p> <p><strong>Security Hacks</strong></p> <p><a href="http://www.microsoft.com/downloads/details.aspx?FamilyId=EFB9C819-53FF-4F82-BFAF-E11625130C25&amp;displaylang=en">Anti-XSS Library v1.5 Download</a></p> <p><a href="http://www.Fiddler2.com">www.Fiddler2.com</a></p> <p><a href="http://www.HelloSecureWorld.com">www.HelloSecureWorld.com</a></p> <p><a href="http://www.owasp.org/index.php/Top_10_2007">Open Source Web Application Project - Top 10 Exploits 2007</a></p> <a href="http://www.acunetix.com/news/paypal.htm">Exploit: Cross Site Scripting - Paypal</a> <p><a href="http://www.webappsec.org/projects/whid/list_id_2006-3.shtml">Exploit: SQL Injection - www.ri.gov</a></p> <p><a href="http://www.news.com/2100-1017-984585.html">Exploit: Cross Site Scripting - FTD</a></p> <p><a href="http://news.bbc.co.uk/2/hi/business/3984845.stm">Exploit: Insecure Direct Object Reference - Cahoots</a></p> <p><a href="http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci1238554,00.html">Exploit: Integer Overflow - Apple</a></p><img src="http://blogs.msdn.com/aggbug.aspx?PostID=7140399" width="1" height="1">MSDN EventsAuthenticationSecurityIIS